The recently issued kernel advisory (SSA:2003-336-01) reads:
"More details about the Apache issue may be found in the Common
Vulnerabilities and Exposures (CVE) database:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0961"
This should say "kernel", not "Apache". Sorry for any confusion.
The CVE link provided is the correct one for the kernel issue.
Thanks to James Hanback for the typo alert. :-)